12c에선 보안용으로 ORA-STIG_PROFILE 이라는 profile을 기본으로 생성해준다.

 

SQL> select * from dba_profiles;

PROFILE           RESOURCE_NAME                  RESOURCE LIMIT                          COM
----------------- ------------------------------ -------- ------------------------------ ---
DEFAULT           COMPOSITE_LIMIT                KERNEL   UNLIMITED                      NO
DEFAULT           SESSIONS_PER_USER              KERNEL   UNLIMITED                      NO
DEFAULT           CPU_PER_SESSION                KERNEL   UNLIMITED                      NO
DEFAULT           CPU_PER_CALL                   KERNEL   UNLIMITED                      NO
DEFAULT           LOGICAL_READS_PER_SESSION      KERNEL   UNLIMITED                      NO
DEFAULT           LOGICAL_READS_PER_CALL         KERNEL   UNLIMITED                      NO
DEFAULT           IDLE_TIME                      KERNEL   UNLIMITED                      NO
DEFAULT           CONNECT_TIME                   KERNEL   UNLIMITED                      NO
DEFAULT           PRIVATE_SGA                    KERNEL   UNLIMITED                      NO
DEFAULT           FAILED_LOGIN_ATTEMPTS          PASSWORD UNLIMITED                      NO
DEFAULT           PASSWORD_LIFE_TIME             PASSWORD UNLIMITED                      NO
DEFAULT           PASSWORD_REUSE_TIME            PASSWORD UNLIMITED                      NO
DEFAULT           PASSWORD_REUSE_MAX             PASSWORD UNLIMITED                      NO
DEFAULT           PASSWORD_VERIFY_FUNCTION       PASSWORD NULL                           NO
DEFAULT           PASSWORD_LOCK_TIME             PASSWORD UNLIMITED                      NO
DEFAULT           PASSWORD_GRACE_TIME            PASSWORD UNLIMITED                      NO
ORA_STIG_PROFILE  COMPOSITE_LIMIT                KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  SESSIONS_PER_USER              KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  CPU_PER_SESSION                KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  CPU_PER_CALL                   KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  LOGICAL_READS_PER_SESSION      KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  LOGICAL_READS_PER_CALL         KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  IDLE_TIME                      KERNEL   15                             NO
ORA_STIG_PROFILE  CONNECT_TIME                   KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  PRIVATE_SGA                    KERNEL   DEFAULT                        NO
ORA_STIG_PROFILE  FAILED_LOGIN_ATTEMPTS          PASSWORD 3                              NO
ORA_STIG_PROFILE  PASSWORD_LIFE_TIME             PASSWORD 60                             NO
ORA_STIG_PROFILE  PASSWORD_REUSE_TIME            PASSWORD 365                            NO
ORA_STIG_PROFILE  PASSWORD_REUSE_MAX             PASSWORD 10                             NO
ORA_STIG_PROFILE  PASSWORD_VERIFY_FUNCTION       PASSWORD ORA12C_STRONG_VERIFY_FUNCTION  NO
ORA_STIG_PROFILE  PASSWORD_LOCK_TIME             PASSWORD UNLIMITED                      NO
ORA_STIG_PROFILE  PASSWORD_GRACE_TIME            PASSWORD 5                              NO

 

STIG란 Security Technical Implementation Guidelines 의 약자이다.

Posted by neo-orcl
,